Two vulnerabilities have been discovered in ActiveX Controls that could allow an attacker to execute arbitrary code or crash systems running Yahoo! Messenger. Sophos recommends that administrators block access to Yahoo! Messenger until they are able to upgrade it. Sophos’s Application Control allows administrators to block or remove application that could pose a security risk.
For more information about the Yahoo! Messenger ActiveX Control vulnerabilities go to:
For more information about Sophos’s Application Control click here.